Over 900,000 WordPress Sites Targeted via XSS Vulnerabilities
More than 900,000 WordPress sites were targeted by a hacker group. That aimed at redirecting visitors to malicious sites or inserting backdoors to the header of a theme when an administrator is logged into.
Also, these attacks targeted Cross-Site Scripting(XSS) vulnerabilities that began on April 28, 2020. And grew to around 30 times than the usual amount over the next few days, as reported by Wordfence.
“While our records show that this threat actor may have sent out a smaller volume of attacks in the past. It’s only in the past few days that they’ve truly ramped up,” said